[j-nsp] ex4200 egress filter
Nick Ryce
Nick.Ryce at lumison.net
Thu Apr 28 07:22:43 EDT 2011
Hi Chris,
The issue should be resolved next week in a service release against 11.1R1
http://www.juniper.net/alerts/viewalert.jsp?txtAlertNumber=PSN-2011-04-224&actionBtn=Search
Nick
-----Original Message-----
From: Chris Kawchuk [mailto:juniperdude at gmail.com]
Sent: 28 April 2011 11:59
To: Nick Ryce
Subject: Re: [j-nsp] ex4200 egress filter
Why not perform this at the routed layer?
Or, are you routing into the VLAN at the EX4200? (i.e. using the EX4200 as a router, not a switch which then uplinks the VLAN to something bigger like an MX...)
- Chris.
On 2011-04-28, at 7:35 PM, Nick Ryce wrote:
> Another question....again...
>
> We currently have an issue where we are unable to use tcp-established on egress firewall filters. We need this as we have firewall filters per customer applied to their own vlan. If the server initiates a connection we want the return traffic allowed ( normally we use tcp-established in cisco land ).
>
> Is there any known work around?
>
> Nick
>
>
> --
> Nick Ryce
> Network Engineer
> Lumison
> t: 0845 1199 900
> d: +44 131 514 4049
>
> P.S. Fancy some light reading? Clouds to networks, download a Lumison
> whitepaper now at http://www.lumison.net/why-lumison/whitepapers
>
>
> ________________________________
> --
>
> This email and any files transmitted with it are confidential and
> intended solely for the use of the individual or entity to whom they are addressed.
> If you have received this email in error please notify the sender. Any
> offers or quotation of service are subject to formal specification.
> Errors and omissions excepted. Please note that any views or opinions
> presented in this email are solely those of the author and do not
> necessarily represent those of Lumison.
> Finally, the recipient should check this email and any attachments for
> the presence of viruses. Lumison accept no liability for any damage
> caused by any virus transmitted by this email.
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
--
This email and any files transmitted with it are confidential and intended
solely for the use of the individual or entity to whom they are addressed.
If you have received this email in error please notify the sender. Any
offers or quotation of service are subject to formal specification.
Errors and omissions excepted. Please note that any views or opinions
presented in this email are solely those of the author and do not
necessarily represent those of Lumison.
Finally, the recipient should check this email and any attachments for the
presence of viruses. Lumison accept no liability for any
damage caused by any virus transmitted by this email.
More information about the juniper-nsp
mailing list